List of cyber attacks and data breaches in October 2021: 51.2 million records were breached

In October, we discovered 94 publicly disclosed cyber security incidents, accounting for 51,248,331 breached records.

The majority of those records came from a cyber attack in which a hacker accessed Argentina’s government ID database, with every citizen of the country thought to be affected.

However, there are plenty of other incidents to dig into, including a raft of ransomware attacks against the education sector.

You can take a look at our full list below, with incidents affecting UK organisations listed in bold.

And don’t forget to check out our Q3 2021 data breaches and cyber attacks quarterly review, in which we take a closer look at the information gathered in our monthly lists.

Cyber attacks

• Centre for Computing History apologises to customers for ’embarrassing’ breach (unknown)
• DDoS attack hits UK internet phone providers (unknown)
• Sunderland University IT systems down in possible cyber attack (unknown)
• Galway university computer systems taken offline after cyber attack (unknown)
• Epilepsy Foundation of Texas notifies individuals following phishing attack (unknown)
• Anonymous releases data on Texas GOP in latest Epik hack dump (unknown)
• Lodi schools lose internet access due to ‘cyber security’ issue (unknown)
• Next Level Apparel releases notice of security incident (unknown)
• Plumsted Township reveals security incident (unknown)
• Oregon Eye Specialists, PC notifies patients after email breach (unknown)
• Data hack hits alumni of Harvard-Westlake Private School (150)
• TX-based Lion Street Financial says employee email accounts were hacked (27)
• Woman allegedly hacked flight school, cleared planes to fly (unknown)
• Verizon-owned Visible network suffers suspected security incident (unknown)
• Olympus US systems hit by cyber attack over the weekend (unknown)
• Data of Acer India customers hacked (10,000)
• Cyber attack shuts down Ecuador’s largest bank, Banco Pichincha (unknown)
• 3D printing site Thingiverse suffers major user data breach (228,000)
• Public School and Education Employee Retirement Systems of Missouri suffers security incident (349,246)
• Adult students’ SSNs from more than 60 years ago caught up in Ohio breach (unknown)
• Hacker steals government ID database for Argentina’s entire population (45 million)
• Hackers leak police takedown video, medical records in Durham Region breach (unknown)
• Indian Interstate cyber hackers’ gang busted (unknown)
• Email breach at North American Dental Group impacts numerous practice (170,000)
• McAllen Surgical Specialty Center notifies patients and employees after security incident (unknown)
• Tesco website and app back online after attempted cyber attack (unknown)
• Centinela Valley Union High School District systems hit by malware (unknown)
• Pakistani agents hack Sambalpur University website (unknown)
• Fullerton Health vendor’s server hacked; personal details of customers sold online (unknown)
• Current and former CU Boulder students’ personal information hacked (30,000)
• Cyber attack closes Iran’s petrol stations (unknown)
• Breach at Throckmorton County Memorial Hospital affects patients and employees (unknown)
• Coughlin & Cerhart law firm in New York experienced a security breach (unknown)
• Samaritan Daytop Village discloses breach (unknown)
• Department store Neiman Marcus notifies customers of data breach (4.6 million)
• Sea Mar Community Health Centers discloses breach that began last year (unknown)
• The City of Titusville provides notice of data security incident (unknown)
• Hackers leak data from LGBTQ dating app Atraf, bus firm and booking company (unknown)

If you find yourself facing a cyber security disaster, IT Governance is here to help. Our Cyber Incident Response service provides the help you need to deal with the threat, as our experts guide you through the recovery process.

They’ll review the breach, mitigate the damage and ensure that you are up and running again as soon as possible.

Ransomware

• Weir Group suffers ‘sophisticated’ ransomware attack (unknown)
• Pottawatomie Co. pays hackers to restore computer systems after cyber attack (unknown)
• Illinois-based OSF Healthcare discloses ransomware incident (53,907)
• Johnson Memorial Health investigates ransomware attack (unknown)
• JDC Healthcare discloses ransomware incident (unknown)
• Ransomware actor tries to pressure Allen ISD by emailing parents (unknown)
• Consolidated High School District 230 in Illinois hit by ransomware (unknown)
• Haverhill Public Schools in Massachusetts discloses ransomware attack (unknown)
• Cox Media Group confirms ransomware attack that took down broadcasts (800)
• ReproSource Fertility Diagnostics notifies patients after ransomware incident (350,000)
• Hillel Yaffe Medical Center in Hadera hit by ransomware (unknown)
• Sinclair TV network crippled by potential ransomware attack (unknown)
• Manhasset Union Free School District suffers ransomware attack (unknown)
• Healthcare practice Anthem suffers ransomware attack (unknown)
• Indiana orthopaedics practice becomes a victim of a ransomware attack (unknown)
• Corry School District says ransomware attack may have exposed data on staff, students (unknown)
• Wiggin and Dana law firm discloses ransomware attack (unknown)
• Italian Society of Authors and Publishers hit by ransomware (unknown)
• Central Restaurants Group in Thailand hit by Desorden ransomware (2,000)
• Woodlake Unified District student and personnel data dumped after ransomware incident (unknown)
• National Rifle Association hit by ransomware attack (unknown)
• Wisconsin-based Janesville schools hit with ransomware attack locking digital systems (unknown)
• Schreiber Foods hit by ransomware; milk processing plants closed (unknown)
• Cyber ​​attack paralyzes Eberspaecher (unknown)
• Washington County school district looks into possible ransomware attack (unknown)
• Seneca Family of Agencies discloses breach personal and medical data (unknown)
• Blue Shield of California insurance broker victim of ransomware attack (2,858)
• Toronto Transit Commission says investigation underway amid ransomware attack (unknown)
• Professional Healthcare Management discloses ransomware incident (unknown)

Data breaches

• MoD web gaffe exposes special forces weapon data (unknown)
• Labour Relations Agency apologises for data breach (213)
• Tesco worker compensated after supermarket lost 15 years of her medical records (unknown)
• Telegraph newspaper exposes 10TB of subscriber data and server logs (1,200)
• Twitch confirms hack, reports say 125gb of data lost in privacy breach (unknown)
• Jersey blames staff shortages blamed for lost medical records (unknown)
• The Virginia Department of Behavioral Health and Developmental Services investigating data leak (unknown)
• Queensland border-pass applicants caught in police privacy breach (350)
• Missouri Teachers’ Social Security numbers at risk on state agency’s website (unknown)
• Williamsville School employees’ private health data inadvertently leaked by Independent Health (500)
• Potential data leak causes confusion for Belvidere School District parents (unknown)
• Schools Marketing Company dismisses report of data breach (unknown)
• Ohio State University email gaffe creates a FERPA breach (399)
• Phoenix Children’s Hospital sends email identifying unvaccinated employees (370)
• Canadian government data breach exposes Afghans to more danger (200)
• German students’ data leaked by a flawed API (400,000)

Financial information

• Barclays hacked by cyber thieves using Monzo account (unknown)
• Transnational fraud ring stole millions from Army members, veterans (unknown)

Malicious insiders and miscellaneous incidents

• ‘Resentful’ Wellingborough IT worker carried out cyber attacks at former employers (unknown)
• University of Alabama says a laptop was stolen from an employee (297)
• TX-based Premier Patient Health Care suffers insider-wrongdoing incident (37,636)
• NJ University Hospital recently learned of long-running insider-wrongdoing breach (9,329)
• UNC Hospitals notifies patients that former employee used patient information for personal gain (719)
• Chico State employee charged with hacking, leaking vaccine exemption requests (130)
• Merced County School District vendor reports a burglary that compromised protected health information (unknown)

In other news…

• FCC to work on rules to prevent SIM swapping attacks
• Governments worldwide to crack down on ransomware payment channels
• Thousands of human error data breaches at Hampshire County Council
• Ransomware attacks in UK have doubled in a year, says GCHQ boss

The post List of data breaches and cyber attacks in October 2021 – 51.2 million records breached appeared first on IT Governance UK Blog.

-------------------------------

By: Luke Irwin
Title: List of data breaches and cyber attacks in October 2021 – 51.2 million records breached
Sourced From: www.itgovernance.co.uk/blog/list-of-data-breaches-and-cyber-attacks-in-october-2021-51-2-million-records-breached
Published Date: Mon, 01 Nov 2021 10:30:14 +0000

Read More